Skip to content

CodeBlackwell/PROVE

BranchesTags

Repository files navigation

🧠 PROVE

Portfolio Reasoning Over Verified Evidence

Python 3.11+ Neo4j 5 Docker Tests License: MIT

"In God we trust; all others must bring data." — W. Edwards Deming

✨ What Makes PROVE Special

Most portfolio tools are glorified link lists. PROVE is an AI-powered evidence engine that turns your actual code into proof of what you know. Here's why it's different:

🔬 Evidence, Not Vibes — Every skill claim is backed by real code snippets, GitHub links, and computed proficiency scores. No self-reported ratings, no trust-me-bro.

🧩 Semantic Bridge — Claude Sonnet writes dense context paragraphs for every code snippet at ingestion time, solving the vocabulary gap between how recruiters search ("OAuth experience") and how code reads (def refresh_token). This is the secret sauce — it makes every future search smarter.

🤖 ReAct Agent with Receipts — The query agent doesn't just search; it reasons. Up to 4 tool calls per question, pulling evidence from vector search, skill graphs, resume data, and architecture summaries. Then an LLM curator picks only the most impressive snippets to show.

📊 Living Knowledge Graph — Not a flat database. A Neo4j graph where Engineer → Repository → File → CodeSnippet → Skill relationships let the system answer questions like "Show me cross-project patterns" or "What skills are claimed but unverified?"

Smart Model Routing — Sonnet for the expensive one-time ingestion work (because context quality is permanent), Haiku for the fast per-request queries (because A/B testing proved it matches Sonnet at 4.8x cheaper). Every dollar is spent where it matters most.

🎯 Three Modes, One Graph — QA chat with multi-turn memory, JD matching with per-requirement confidence scores, and an interactive D3 competency treemap. All powered by the same underlying knowledge graph.

🔗 Live demo: prove.codeblackwell.ai

💼 Business Value

PROVE isn't just a cool technical project — it solves real problems for real people:

🎯 For Engineers

  • Stand out in the hiring pile — Instead of "5 years of Python" on a resume, link to a live system that proves it with your actual code, proficiency levels, and cross-project evidence
  • Know your own gaps — The gap analysis tool shows which resume claims have no code backing them. Fix blind spots before an interviewer finds them
  • Architecture storytelling — Pre-seeded mermaid diagrams turn "I built a microservices platform" into a visual, interactive walkthrough

🏢 For Hiring Managers & Recruiters

  • Cut through resume inflation — Ask any question and get code-backed answers with confidence scores. No more guessing if "expert in React" means production apps or tutorial projects
  • JD matching in seconds — Paste a job description, get per-requirement match scores with direct links to the code that proves each skill
  • Reduce interview time — Pre-screen technical depth before the first call. Focus interviews on culture fit and system design, not "can they actually code?"

📈 The ROI

  • $0.01 per query — Haiku-powered responses cost about a penny each. A full assessment costs less than a cup of coffee ☕
  • One-time ingestion, infinite queries — Sonnet context generation runs once per codebase. Every query after that is fast and cheap
  • Free tier available — NVIDIA NIM pipeline costs $0. Quality pipeline (Anthropic + Voyage) costs ~$2-5 for a full codebase ingestion

📖 Table of Contents

🚀 Quick Start

Everything you need to go from zero to a running instance. Let's cook 🍳

Prerequisites

Tool Why Install
🐳 Docker Runs Neo4j get.docker.com
🐍 Python 3.11+ Runtime python.org
📦 uv Blazing fast package manager curl -LsSf https://astral.sh/uv/install.sh | sh
🔀 Git Clones repos during ingestion Pre-installed on most systems

1. Clone and install

git clone https://github.com/CodeBlackwell/PROVE.git
cd PROVE
uv sync

2. Fire up Neo4j 🔥

docker compose up -d

Wait a few seconds for Neo4j to become healthy. You can check at http://localhost:7474.

3. Configure your API keys 🔑

cp .env.example .env

Open .env and add your keys. You have two pipeline options:

🆓 Free pipeline: Set NVIDIA_API_KEY only. Uses NVIDIA NIM for everything (Nemotron 49B + EmbedQA 1B). Great for trying it out without spending a dime.

💎 Quality pipeline: Set ANTHROPIC_API_KEY + VOYAGE_API_KEY. Ingestion auto-upgrades to Claude Sonnet for richer context descriptions. Queries use Haiku 4.5 (fast and cheap). This is what the live demo runs.

4. Ingest your data 🍽️

Pick one:

# All public repos for a GitHub user
uv run python -m src.ingestion.cli \
  --resume path/to/resume.pdf \
  --github-user your-username

# Specific repos
uv run python -m src.ingestion.cli \
  --resume path/to/resume.pdf \
  --repos https://github.com/you/repo1 https://github.com/you/repo2

5. Launch! 🚀

just dev
# → http://127.0.0.1:7860

If you don't have just, the raw command is:

CHAT_PROVIDER=anthropic EMBED_PROVIDER=voyage uv run uvicorn src.app:app --port 7860 --reload

6. Verify ✅

Open the browser and ask: "What are this engineer's strongest skills?" — you should see a narrative answer with GitHub-linked code evidence and a competency treemap building in the right panel. If it works, you're golden 🏆

🔍 How It Works

"The purpose of a system is what it does." — Stafford Beer

flowchart TB
    subgraph INGEST["<b>📥 Ingestion</b> · one-time · Claude Sonnet"]
        direction TB
        R[Resume PDF] --> RP[Sonnet Parse<br><i>roles, skills, companies</i>]
        G[GitHub Repos] --> TS[Tree-sitter Parse<br><i>functions, classes</i>]
        TS --> SC[Sonnet Classify<br><i>map to skill taxonomy</i>]
        SC --> CG[Sonnet Context Gen<br><i>dense paragraph per snippet</i>]
        CG --> EM[Embed<br><i>Voyage-3.5 / EmbedQA</i>]
        EM --> N4[(Neo4j<br>Knowledge Graph)]
        RP --> N4
    end

    subgraph GRAPH["<b>🕸️ Knowledge Graph</b> · Neo4j"]
        direction LR
        ENG[Engineer] -->|OWNS| REPO[Repository]
        REPO -->|CONTAINS| FILE[File]
        FILE -->|CONTAINS| CS[CodeSnippet<br><i>content, context,<br>embeddings, lines</i>]
        CS -->|DEMONSTRATES| SK[Skill<br><i>proficiency, counts</i>]
        DOM[Domain] -->|CONTAINS| CAT[Category]
        CAT -->|CONTAINS| SK
        ENG -->|CLAIMS| SK
    end

    subgraph QUERY["<b>💬 Query</b> · per-request · Claude Haiku"]
        direction TB
        Q[User Question] --> EMQ[Embed Query]
        EMQ --> REACT[ReAct Agent<br><i>up to 4 tool calls</i>]
        REACT --> T1[search_code<br><i>vector similarity</i>]
        REACT --> T2[get_evidence<br><i>skill lookup</i>]
        REACT --> T3[find_gaps<br><i>gap analysis</i>]
        REACT --> T4[get_repo_overview<br><i>repo structure</i>]
        REACT --> T5[get_connected_evidence<br><i>multi-file view</i>]
        REACT --> T6[search_resume<br><i>work history</i>]
        T1 & T2 & T3 & T4 & T5 & T6 --> EV[Evidence Collection<br><i>sort, dedup, diversify</i>]
        EV --> CUR[Haiku Curation<br><i>pick best, assign display mode</i>]
    end

    subgraph STREAM["<b>📡 Response</b> · SSE Stream"]
        direction LR
        SS[Status Updates<br><i>tool-by-tool</i>] --> SG[Skill Subgraph<br><i>progressive D3 viz</i>]
        SG --> ANS[Answer + Evidence<br><i>narrative, code, GitHub links,<br>confidence score</i>]
    end

    N4 --> QUERY
    REACT -.->|intermediate<br>subgraph| SG
    CUR --> ANS

    style INGEST fill:#f5f0eb,stroke:#8b7355,color:#2c2c2c
    style GRAPH fill:#f5f0eb,stroke:#6b8f9e,color:#2c2c2c
    style QUERY fill:#f5f0eb,stroke:#7a8b6f,color:#2c2c2c
    style STREAM fill:#f5f0eb,stroke:#b8805a,color:#2c2c2c
Loading

📥 Ingestion Pipeline

The ingestion pipeline transforms raw code and a resume into a searchable knowledge graph. It runs once (and is safe to re-run — it skips already-processed files). Think of it as building the brain 🧠

flowchart LR
    A[Source Files] --> B[tree-sitter<br>Parse]
    B --> C[Code Chunks]
    C --> D[Sonnet<br>Classify]
    D --> E[Skills]
    C --> F[Sonnet<br>Context Gen]
    E -.-> F
    F --> G[Dense<br>Descriptions]
    G --> H[Embed]
    C --> H
    H --> I[(Neo4j)]

    style D fill:#f5f0eb,stroke:#8b7355
    style F fill:#f5f0eb,stroke:#8b7355
    style H fill:#f5f0eb,stroke:#6b8f9e
    style I fill:#f5f0eb,stroke:#6b8f9e
Loading

1. 🌳 Parse — Tree-sitter extracts every function and class from your source files. Supports Python, JavaScript, TypeScript, and TSX natively. Other languages get a fallback double-newline split so nothing is left behind.

2. 🏷️ Classify — Claude Sonnet reads each code snippet and maps it to skills from a curated taxonomy of ~85 skills across 11 domains (src/ingestion/skill_taxonomy.py). Snippets are batched (20 per LLM call) and processed concurrently. The classifier is constrained to the known skills list — no hallucinated skill names.

3. 🪄 Generate Context — This is where the magic happens. Raw code like def refresh_token(client, token): never mentions "OAuth" or "security" — but a recruiter will search for exactly those terms. Sonnet writes a dense paragraph per snippet that bridges this vocabulary gap. Each description captures four things:

  • What it does — the business/system purpose
  • Engineering patterns — design patterns and techniques used
  • Skill keywords — restated in standard industry vocabulary matching the taxonomy
  • Quality signals — production traits like error handling, concurrency safety, type safety

These descriptions are stored permanently on each CodeSnippet node and improve every future query's vector search. See src/ingestion/context_generator.py for the full system prompt.

4. 🧲 Embed — The final embedding input is (context paragraph + metadata preamble + raw code), producing a 1024-dimensional vector. Vectors are stored per provider (embedding_voyage and embedding_nim) as separate Neo4j properties with separate vector indices.

5. 🔗 Link — Cypher creates the graph edges. Git blame extracts the earliest and latest commit dates for each snippet, stored as first_seen / last_seen on the :DEMONSTRATES relationship.

🕸️ Knowledge Graph

The Neo4j knowledge graph connects engineers to their code through a typed skill taxonomy. It's the backbone of everything 💪

graph LR
    ENG([Engineer]) -->|OWNS| REPO([Repository])
    REPO -->|CONTAINS| FILE([File])
    FILE -->|CONTAINS| CS([CodeSnippet])
    CS -->|DEMONSTRATES| SK([Skill])

    DOM([Domain]) -->|CONTAINS| CAT([Category])
    CAT -->|CONTAINS| SK

    ENG -.->|CLAIMS| SK
    ENG -->|HELD| ROLE([Role])
    ROLE -->|AT| CO([Company])

    style ENG fill:#c4956a,stroke:#8b7355,color:#fff
    style REPO fill:#6b8f9e,stroke:#4a6e7d,color:#fff
    style CS fill:#7a8b6f,stroke:#5a6b4f,color:#fff
    style SK fill:#b8805a,stroke:#8b6340,color:#fff
    style DOM fill:#8b7355,stroke:#6b5335,color:#fff
    style CAT fill:#a89070,stroke:#8b7355,color:#fff
Loading

Key node types:

Node Key Properties Notes
CodeSnippet content, context, embedding_voyage, embedding_nim, start_line, end_line, language The atomic unit of evidence 🔬
Skill name, proficiency, snippet_count, repo_count Proficiency computed from evidence density
Repository name, default_branch, private, architecture architecture holds Opus-generated markdown with mermaid diagram

Proficiency levels are computed from evidence density — no self-reporting, pure math 📐

Level Threshold Meaning
🟢 Extensive 10+ snippets across 2+ repos Deep, cross-project expertise
🟡 Moderate 3+ snippets Solid working knowledge
🟠 Minimal 1+ snippet Has touched it

The taxonomy organizes skills into a 3-tier hierarchy: Domain (e.g., "Backend Engineering") > Category (e.g., "Web Frameworks") > Skill (e.g., "FastAPI"). 11 domains, 40+ categories, ~85 skills. See src/ingestion/skill_taxonomy.py for the full tree.

Resume-parsed skills create :CLAIMS edges — these are "unverified" until matched to code evidence via :DEMONSTRATES. The gap analysis tool uses this distinction to report which claims are backed by code and which aren't. Claims without code? We'll let you know 👀

💬 Query Pipeline

When someone asks "Does this engineer know Kubernetes?", here's what goes down:

flowchart LR
    Q["User Question"] --> SP["System Prompt<br>+ Skill Inventory"]
    SP --> REACT["ReAct Loop<br><i>up to 4 tool calls</i>"]
    REACT --> TOOLS["Tool Results<br><i>evidence collected</i>"]
    TOOLS --> REACT
    REACT --> SORT["Sort + Dedup<br><i>proficiency × score</i>"]
    SORT --> CURATE["LLM Curation<br><i>keep/drop, inline/link</i>"]
    CURATE --> RESP["Response<br><i>narrative + evidence<br>+ confidence</i>"]

    style REACT fill:#f5f0eb,stroke:#7a8b6f
    style CURATE fill:#f5f0eb,stroke:#8b7355
    style RESP fill:#f5f0eb,stroke:#b8805a
Loading

1. 🧭 System prompt assembly — The agent gets a dynamically built prompt containing a skill inventory sorted strongest-first with proficiency levels and evidence counts. This lets the model make intelligent tool selection without needing to search first.

2. 🔄 ReAct loop — The agent makes up to 4 tool calls, choosing from 6 tools:

Tool What It Does Best For
🔍 search_code Vector similarity across all snippets Broad or specific skill questions
📊 get_evidence Direct skill node lookup with proficiency Skill deep-dives
📄 search_resume Full-text search over resume data Career and role questions
🕳️ find_gaps Hierarchy-aware gap analysis "What's missing for this role?"
🏗️ get_repo_overview Repo structure, top skills, pre-seeded architecture summary Architecture questions
🔗 get_connected_evidence Multi-file snippets within one repo System design questions

3. 📈 Evidence sorting — Results are ranked by proficiency weight + similarity score, deduplicated by file path (keeping the best snippet per file), and interleaved by repository for diversity.

4. ✂️ LLM curation — The model reviews the top evidence and makes per-snippet decisions: keep or drop, display inline (show the code) or as a link (show an architectural explanation instead). Trivial code (one-line configs, bare imports) gets dropped. Each kept snippet gets a 1-2 sentence explanation of why it's impressive.

5. 🎤 Response — Two answer modes:

  • Skill questions: 2-3 sentence narrative + curated evidence blocks with GitHub links, explanations, and confidence score.
  • Architecture questions ("How did Le build SPICE?"): Detailed explanation with a pre-seeded mermaid diagram (generated by Opus at ingestion time, stored on the Repository node), rendered as an interactive SVG in the chat. Haiku includes the diagram verbatim rather than generating one on the fly — this ensures consistent, high-quality architectural visualizations.

🔒 Private repository code is automatically redacted from responses when SHOW_PRIVATE_CODE=false — context descriptions and GitHub links are still shown, but raw code is not.

📋 JD Match

Upload a job description (PDF, DOCX, or paste text) and PROVE breaks it into individual technical requirements, embeds each one, runs vector search against the knowledge graph, and computes per-requirement confidence:

  • 💪 Strong — 3+ high-scoring code examples with extensive/moderate proficiency
  • 🤏 Partial — Some evidence, lower scores or fewer examples
  • None — No matching code found

Each requirement expands to show the matching code evidence with GitHub links. An overall match percentage and LLM-generated summary tie it together. It's like having a technical screener that never sleeps 🦉

🏗️ Architecture

"Simplicity is prerequisite for reliability." — Edsger W. Dijkstra

🧠 Model Strategy

The system deliberately uses different models at different stages — not because of cost alone, but because each stage has different quality/speed requirements. It's about spending wisely, not spending less 💡

Ingestion uses Claude Sonnet (always). Context generation and skill classification happen once per code snippet and permanently affect embedding quality. A better context description means better vector search results for every future query. This is the highest-leverage LLM work in the system — Sonnet's stronger reasoning produces richer, more precise descriptions that justify the cost premium since it's a one-time investment amortized across all queries.

Queries use Claude Haiku 4.5. The ReAct loop, evidence curation, and answer generation run on every user question. A/B testing across 9 multi-turn conversations showed Haiku matches Sonnet's quality for this task — it picks the right tools, includes quantitative detail, and follows format instructions well. The heavy lifting is already done by the embedding pipeline. At 4.8x cheaper and 2.1x faster than Sonnet, the tradeoff is clear.

Provider matrix:

Stage NIM Pipeline (free) 🆓 Anthropic Pipeline 💎 Why
Ingestion: classify + context Sonnet (if key set) or Nemotron Claude Sonnet (always) Context quality is permanent
Ingestion: embed EmbedQA 1B Voyage-3.5 One-time cost, stored per provider
Query: ReAct + curate Nemotron 49B Claude Haiku 4.5 Runs every request — speed matters
Query: embed EmbedQA 1B Voyage-3.5 Single embedding per query

When ANTHROPIC_API_KEY is set, ingestion automatically upgrades to Sonnet regardless of CHAT_PROVIDER. Even NIM-pipeline users get Sonnet-quality context generation. Free upgrade — you're welcome 😎

🪄 Context Augmentation — The Secret Sauce

Consider this function signature: def refresh_token(client, token):. A recruiter searching for "OAuth experience" will never find it via naive code search — the word "OAuth" appears nowhere in the code. This vocabulary gap between how humans describe skills and how code implements them is the core retrieval challenge.

PROVE solves this at ingestion time. For every code snippet, Sonnet generates a dense contextual paragraph that restates what the code proves in human-searchable vocabulary:

"Implements OAuth2 refresh token rotation using the client credentials grant. Demonstrates secure token lifecycle management with automatic retry on network failure. Shows production-quality patterns: exponential backoff, thread-safe token caching, and structured error propagation."

This context field is stored on the CodeSnippet node and flows through the entire system:

flowchart LR
    SN["🪄 Sonnet writes<br>context paragraph"] --> NODE["💾 Stored on<br>CodeSnippet node"]
    NODE --> EMB["🧲 Prepended to code<br>before embedding"]
    NODE --> TOOL["🔧 Included in<br>tool results"]
    NODE --> CUR["✂️ Seen by<br>LLM curator"]
    NODE --> DISP["💬 Fallback explanation<br>in response"]

    style SN fill:#f5f0eb,stroke:#8b7355
    style NODE fill:#f5f0eb,stroke:#6b8f9e
Loading
  • Embedding — prepended to code before vectorization, so the vector captures both semantics and implementation
  • Tool results — included in ReAct loop responses so the model can reason about code purpose
  • Curation — the curator sees it when deciding inline vs. link display mode
  • Display — used as the explanation fallback when the curator doesn't provide one

No embedding without context: The reembed.py script enforces this — Phase 1 generates missing context descriptions, Phase 2 only embeds snippets that have them. No shortcuts 🚫

🏷️ Taxonomy-Aware Generation

The ~85-skill taxonomy isn't just for classification — it shapes the entire pipeline:

  • 🎯 Classifier receives the full skills list, constraining output to known skills (no hallucinated or misspelled skill names)
  • 📝 Context generator receives it too, ensuring descriptions use standardized vocabulary that aligns with how skills are stored and searched
  • 🔍 Gap analysis is hierarchy-aware: if "Kubernetes" isn't demonstrated, the find_gaps tool checks the "Containers & Orchestration" category for related skills like "Docker" before reporting a hard gap

The taxonomy covers 11 domains from AI/ML through Security to Domain-Specific specializations. See the full tree in src/ingestion/skill_taxonomy.py.

🔀 Dual Provider System

Two environment variables control everything: CHAT_PROVIDER (nim or anthropic) and EMBED_PROVIDER (nim or voyage). The build_clients() factory in src/core/client_factory.py returns all clients as a dict. All chat clients share the same .chat(messages, tools, purpose) interface — ClaudeChatClient adapts Anthropic's format internally.

Embeddings are provider-namespaced in Neo4j: embedding_nim and embedding_voyage are separate properties with separate vector indices. Switching embedding providers requires running reembed.py to populate the new vectors.

🧵 Conversation Memory

The QA agent supports multi-turn conversations. Each session stores condensed history in SQLite — question + answer text only, no evidence or tool internals — so follow-up questions like "tell me more about that" or "what about React?" resolve correctly. History is injected between the system prompt and new question. Max 20 turns per session. It actually remembers what you were talking about 🤯

📡 SSE Streaming and Visualization

Responses stream via Server-Sent Events with four event types:

Event Payload Purpose
🆔 session Session ID Conversation tracking
status Phase, tool name, args Live tool-call progress tracker
📊 graph Nodes + edges Progressive D3 visualization
💬 (default) Answer text Streamed narrative + evidence

The frontend renders a glassmorphic UI with two visualization modes — Treemap 🟩 (nested rectangles: Domain > Category > Skill, tile size = evidence count) and Bars 📊 (ranked skill list). The graph accumulates across queries within a session. Clicking any demonstrated skill opens a reference modal with all code evidence and GitHub links.

🛡️ Rate limiting protects API costs: 20 chat requests/hour and 60 reads/hour per visitor, identified by IP + lightweight browser fingerprint.

⚙️ Configuration

cp .env.example .env

🔑 Required (pick at least one pipeline)

Variable Notes
NVIDIA_API_KEY Required for NIM pipeline (free 🆓)
ANTHROPIC_API_KEY Required for Anthropic chat; also enables Sonnet for ingestion
VOYAGE_API_KEY Required for Voyage embeddings

🔀 Pipeline Selection

Variable Default Options
CHAT_PROVIDER nim nim or anthropic
EMBED_PROVIDER nim nim or voyage
CLAUDE_MODEL claude-haiku-4-5-20251001 Query model only — ingestion always uses Sonnet

🗄️ Database and Graph

Variable Default Notes
NEO4J_URI bolt://localhost:7687 Auto-set in docker-compose.prod.yml
NEO4J_USER neo4j
NEO4J_PASSWORD prove Change this in production! 🔐
DB_PATH data/prove.db SQLite for conversations, logs, rate limits

🐙 GitHub

Variable Default Notes
GITHUB_TOKEN Enables private repo access during ingestion
GITHUB_OWNER codeblackwell Username for GitHub links in responses
SHOW_PRIVATE_CODE false When false, private repo code is redacted (context + links still shown)

🚢 Deployment and Logging

Variable Default Notes
DOMAIN localhost Your domain for Caddy auto-HTTPS (production only)
LOG_LEVEL INFO DEBUG, INFO, WARNING, ERROR

📚 Ingestion Guide

For more control than the Quick Start provides. Power user mode activated 🔋

Resume Formats

PDF (via pypdf), DOCX (via python-docx), Markdown, and plain text. Sonnet extracts name, roles, companies, and skills. If an Engineer node already exists in the graph, re-ingestion reuses it.

Repo Sources

# Explicit repos (GitHub URLs or local paths)
--repos https://github.com/user/repo1 /path/to/local/repo

# All repos for a GitHub user (paginates automatically, skips forks)
--github-user username

For private repos, set GITHUB_TOKEN in .env. Private repos are ingested identically to public ones — the private flag on the Repository node controls whether raw code appears in query responses (governed by SHOW_PRIVATE_CODE).

🗣️ Supported Languages

Language Parser Extracts
🐍 Python tree-sitter-python Functions, classes
🟨 JavaScript tree-sitter-javascript Functions, classes
🔷 TypeScript tree-sitter-typescript Functions, classes
⚛️ TSX tree-sitter-tsx Functions, classes
📓 Jupyter Notebooks JSON + tree-sitter-python Code cells → functions, classes (or per-cell fallback)
🌐 Other (.java, .go, .rs, .rb, .cpp, .c, .h) Fallback Double-newline blocks

🔄 Re-embedding

If you change embedding providers, add repos, or want to regenerate context descriptions:

uv run python scripts/reembed.py                        # auto-detects providers from .env
uv run python scripts/reembed.py --providers voyage      # just Voyage
uv run python scripts/reembed.py --providers nim voyage   # explicit both

This runs in two phases:

  1. Phase 1 — Generate missing Sonnet context descriptions (the context field on CodeSnippet nodes)
  2. Phase 2 — Embed all snippets that have context, in parallel across providers

The pipeline is idempotent — it skips snippets that already have embeddings for the target provider. Safe to re-run anytime. Smash that button 🔘

🏛️ Architecture Summaries

Each repository can have a pre-seeded architecture summary with a mermaid diagram, stored on the Repository node's architecture property. When a user asks "How did you build X?", the agent retrieves this summary verbatim rather than asking Haiku to generate a diagram on the fly (which is unreliable).

To add an architecture summary for a repo:

MATCH (r:Repository {name: "MyRepo"})
SET r.architecture = "## MyRepo\n\nDescription...\n\n```mermaid\nflowchart LR\n    A --> B\n```\n\n### Key Design Decisions\n..."

These are best written by a strong reasoning model (Opus/Sonnet) that can read the actual codebase and produce accurate diagrams. The live demo's summaries were generated by Opus in a single session 🎯

🗂️ Project Structure

src/
├── app.py                        # 🚀 FastAPI entry point, SSE streaming, rate limiting
├── config/settings.py            # ⚙️ Env-based configuration dataclass
├── core/
│   ├── client_factory.py         # 🏭 Provider-aware client construction
│   ├── claude_chat_client.py     # 🤖 Anthropic adapter (OpenAI-compatible interface)
│   ├── nim_client.py             # 🟢 NVIDIA NIM wrapper (chat + embeddings)
│   ├── voyage_client.py          # 🚢 Voyage embedding wrapper
│   ├── neo4j_client.py           # 🕸️ Graph DB client with vector search
│   ├── db.py                     # 💾 SQLite persistence (conversations, logs, rate limits)
│   └── logger.py                 # 📋 Structured JSON logger with session auditing
├── ingestion/
│   ├── cli.py                    # 📥 Ingestion entry point (resume + repos)
│   ├── graph_builder.py          # 🔨 Code → Neo4j graph pipeline
│   ├── code_parser.py            # 🌳 Tree-sitter chunking (Python, JS, TS, TSX, Jupyter)
│   ├── context_generator.py      # 🪄 Sonnet contextual descriptions for embeddings
│   ├── skill_classifier.py       # 🏷️ Sonnet skill detection against taxonomy
│   ├── skill_taxonomy.py         # 📊 11 domains, 40+ categories, ~85 skills
│   └── resume_parser.py          # 📄 Resume extraction (PDF, DOCX, MD, TXT)
├── qa/
│   ├── agent.py                  # 🤖 ReAct agent with curation and conversation history
│   └── tools.py                  # 🔧 6 tools (search, evidence, gaps, repos, resume)
├── jd_match/
│   ├── agent.py                  # 📋 Job description match orchestrator
│   ├── parser.py                 # ✂️ Requirement extraction via LLM
│   └── matcher.py                # 🎯 Vector-based per-requirement matching
├── ui/
│   └── competency_map.py         # 📊 Graph visualization data (treemap, bars, tooltips)
├── static/
│   ├── chat.js                   # 💬 Chat SSE streaming + message rendering
│   ├── graph.js                  # 📈 D3 treemap/bars + reference modals
│   ├── jd.js                     # 📋 JD match modal + results UI
│   ├── fingerprint.js            # 🔒 Lightweight browser fingerprinting for rate limits
│   └── style.css                 # 🎨 Glassmorphic design system
├── templates/
│   └── index.html                # 🖥️ Single-page app shell
scripts/
├── reembed.py                    # 🔄 Context generation + embedding pipeline
└── deploy.sh                     # 🚀 Fresh VPS deployment script

🧪 Testing

uv run pytest tests/ -v              # all 56 tests (~0.35s) ⚡
uv run pytest tests/test_qa.py -v    # QA agent (ReAct loop, curation, formatting, streaming)
uv run pytest tests/test_ingestion.py -v  # Parsing, graph building, skill extraction
uv run pytest tests/test_jd_match.py -v   # Requirement parsing, matching, confidence
uv run pytest tests/test_db.py -v         # SQLite persistence, rate limiting

Tests mock all LLM calls and run against a real Neo4j instance (requires docker compose up -d). 56 tests in under half a second — gotta go fast 🏎️💨

📋 Structured Logging

Every LLM call, embedding, tool execution, and curation decision is logged with session context, token counts, latency, and cost estimates. Full observability, zero guesswork 🔍

  • Console — Colored human-readable output 🎨
  • File — JSON lines at logs/app.jsonl 📁
  • SQLite — Queryable via /api/logs endpoint 🗄️
LOG_LEVEL=DEBUG just dev  # verbose mode 🔊

Cost estimation per model:

Model Input ($/M tokens) Output ($/M tokens) Vibe
Claude Sonnet $3.00 $15.00 💎 Premium
Claude Haiku 4.5 $1.00 $5.00 ⚡ Sweet spot
Voyage-3.5 $0.06 🪶 Featherweight
NIM (Nemotron + EmbedQA) Free Free 🆓 Can't beat free

Sample session summary:

{
  "session_id": "6c418440fbb1",
  "llm_calls": 3,
  "embed_calls": 1,
  "tool_calls": 2,
  "total_input_tokens": 11634,
  "total_output_tokens": 1948,
  "total_cost_usd": 0.011,
  "total_latency_ms": 8600
}

☝️ That's a penny per question. Not bad for an AI-powered evidence engine.

🚢 Deployment

"Real artists ship." — Steve Jobs

Production Stack

docker-compose.prod.yml runs three services:

Service Role Exposed?
🚀 app FastAPI on :7860 Internal only
🕸️ neo4j Neo4j 5 Community with healthcheck Internal only
🔒 caddy Reverse proxy, auto-HTTPS via Let's Encrypt :80, :443

Neo4j is never exposed to the internet. Caddy handles TLS automatically. Fort Knox vibes 🏰

Deploy Commands

# Fresh VPS setup (Ubuntu 22.04+)
ssh root@your-server 'bash -s' < scripts/deploy.sh

# On the server: configure and start
nano .env  # Set DOMAIN, API keys, NEO4J_PASSWORD
docker compose -f docker-compose.prod.yml up -d --build

# View logs
docker compose -f docker-compose.prod.yml logs -f

# Update after code changes
git pull && docker compose -f docker-compose.prod.yml up -d --build

🛡️ Security

  • 🔐 Caddy auto-provisions HTTPS via Let's Encrypt and adds security headers (X-Content-Type-Options, X-Frame-Options, Referrer-Policy)
  • ⏱️ Rate limits: 20 chat requests/hour, 60 reads/hour per visitor (IP + browser fingerprint)
  • 🏠 Localhost is exempt from rate limits for development
  • 🙈 Private repo code is redacted by default (SHOW_PRIVATE_CODE=false) — context descriptions and GitHub links still shown, raw code withheld
  • 🤫 Secrets live in .env on the server (never committed)

🤝 Contributing

PRs welcome! Come build with us 🛠️ Please run the tests before submitting:

docker compose up -d  # Neo4j must be running
uv run pytest tests/ -v

📝 License

PROVE is open source under a modified MIT license. Use it, fork it, make it yours 🎁

All I ask: keep the attribution, and if it helped you — let's chat. I'm building cool things and always down to connect 🤝

GitHub | LinkedIn

Made with 🔥 and intent by @CodeBlackwell

About

Portfolio Reasoning Over Verified Evidence - Your resume says you know Python. PROVE shows the code. Ingests repos via tree-sitter → Sonnet classification → Voyage embeddings → Neo4j knowledge graph. A ReAct agent answers skill questions with code-backed evidence, JD matching, and D3 visualizations. Haiku queries at $0.01/ask.

PROVE.codeblackwell.ai

Topics

portfolio tree-sitter ai neo4j knowledge-graph ai-agents rag rag-pipeline

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages